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Figure 3 
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(^CloseLook Agent 



Program Control View Options Help 



1:1 



TODO: layout dialog bar 



Vulnerabilities Report 

clreportl 0781 43909 Mon Mar 01 17:55:09 2004 

InterTace IP address = 10.0.0.21 



Port 



Service 
Name 



Severity 



Description 



33721 tip2 



Security 
Note 



A MSDTC server is rurming on tliis port 



1027 saml 



Distributed Computing Environment (DCE) services running on 
the remote host can be enumerated by connecting on port 135 
and doing the appropriate queries. An attacker may use this 



MB' 



Receivfm g vuinerabiljty report. 



Figure. 12 
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Tree 



Internet InFormation Services 



spinozaj 



Description 



I State I Host Header Name 1 IP Addresf 



Default Web Site 



i§ Administration Web Site (Stop. . . Stopped 
^Default SMTP Virtual Server (S. . . Stopped 



* All Unas: 



* All Unasf 

* All Unasi' 




Figure. 13 
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J^^ CloseLook Agent 



li Program Control View Options Help 

1! 



mm 



TO DO: layout dialog bar 



80 http 



Security 
Hole 



The remote WebDAV server may be vuberable to a buflfer 
overflow when it receives a too long request. An attacker may 
use this flav/ to execute arbitrary code within the LocalSystem 
security context. *** As safe checks are enabled, Nessus did 
not actually test for this *** flaw, so this mi^t be a false 
positive Solution ; See 

httpi/M'Ww.microsoftxoiYi/technet/security/bijlletiii/msOS- 

007.asp Risk Factor : Higli CVE : CAl<r-2003-0109 BID : 
7116 Other references : IAVA:2003-A-0005 



Yow: webserver supports the TEACE and/or TRACK 
methods. TRACE aiid TRACK are HIl'P methods which are 
used to debug web sen/er coraxiections. It has been shown that 
servers supporting this method are subject to cross-site- 
scrj|>ting attacks, dubbed XST for "Cross -S'ite-Tracing", when 
used m coftjxmction with vanous weaknesses in browsers. An 
attacker may use this flaw to tnck jour legitimate web users to 
gpre him thei r credenti als. S ol uti on- Disable these methad?. If 
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Figure. 14 
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You have 2 
security hole(s) 

on interface 
203.101.53.68 



Figure. 15 
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